Qualcomm Qca1064_firmware
79 CVEs affecting Qualcomm Qca1064_firmware. Latest disclosed: 2025-09-24. Critical: 6, High: 69.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-40514 | Critical | 9.8 | 2023-02-12 | Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame. |
CVE-2022-25748 | Critical | 9.8 | 2022-10-19 | Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity… |
CVE-2021-30321 | Critical | 9.8 | 2021-11-12 | Possible buffer overflow due to lack of parameter length check during MBSSID scan IE parse in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer… |
CVE-2020-11264 | Critical | 9.1 | 2021-09-08 | Improper authentication of Non-EAPOL/WAPI plaintext frames during four-way handshake can lead to arbitrary network packet injection in Snapdragon Auto, Snapdra… |
CVE-2020-11276 | Critical | 9.1 | 2021-02-22 | Possible buffer over read while processing P2P IE and NOA attribute of beacon and probe response frames due to improper validation of P2P IE and NOA attribute… |
CVE-2020-11275 | Critical | 9.1 | 2021-02-22 | Possible buffer over-read while parsing quiet IE in Rx beacon frame due to improper check of IE length in received beacon in Snapdragon Auto, Snapdragon Comput… |
CVE-2023-33088 | High | 8.4 | 2023-12-05 | Memory corruption when processing cmd parameters while parsing vdev. |
CVE-2022-33275 | High | 8.4 | 2023-09-05 | Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range. |
CVE-2022-40532 | High | 8.4 | 2023-04-13 | Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target. |
CVE-2022-40531 | High | 8.4 | 2023-03-10 | Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message. |
CVE-2022-40530 | High | 8.4 | 2023-03-10 | Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase. |
CVE-2022-33277 | High | 8.4 | 2023-02-12 | Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. |
CVE-2021-30288 | High | 8.4 | 2021-10-20 | Possible stack overflow due to improper length check of TLV while copying the TLV to a local stack variable in Snapdragon Auto, Snapdragon Compute, Snapdragon… |
CVE-2021-30260 | High | 8.4 | 2021-09-17 | Possible Integer overflow to buffer overflow issue can occur due to improper validation of input parameters when extscan hostlist configuration command is rece… |
CVE-2021-1892 | High | 8.4 | 2021-04-07 | Memory corruption due to improper input validation while processing IO control which is nonstandard in Snapdragon Compute, Snapdragon Connectivity, Snapdragon… |
CVE-2024-38408 | High | 8.2 | 2024-11-04 | Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions. |
CVE-2022-33271 | High | 8.2 | 2023-02-12 | Information disclosure due to buffer over-read in WLAN while parsing NMF frame. |
CVE-2022-33252 | High | 8.2 | 2023-01-09 | Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame. |
CVE-2022-33235 | High | 8.2 | 2022-12-13 | Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto, Snapdragon Compute, Snapdra… |
CVE-2025-21441 | High | 7.8 | 2025-04-07 | Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver. |